Systems, methods, and devices of the various embodiments provide for header extension preservation, security, authentication, and/or protocol translation for Multipath Real-Time Transport Protocol (MPRTP). Various embodiments include methods that may be implemented in a processor of a computing device for MPRTP transmission of Real-Time Transport Protocol (RTP) packets. Various embodiments may include receiving an RTP packet in which the received RTP packet may be part of an RTP stream that may be protected using secure RTP (SRTP), and applying an authentication signature to the RTP packet to authenticate an MPRTP header extension separate from a body of the RTP packet. Various embodiments may include sending and/or receiving MPRTP subflows of an MPRTP session in which a same security context may be applied across all MPRTP subflows of the MPRTP session.
Legal claims defining the scope of protection. Each claim is shown in both the original legal language and a plain English translation.
1. A method for Multipath Real-Time Transport Protocol (MPRTP) transmission of Real-Time Transport Protocol (RTP) packets, comprising: receiving an RTP packet at a processor of a computing device, wherein the received RTP packet is part of an RTP stream that is protected using secure RTP (SRTP); applying an authentication signature to the RTP packet to authenticate an MPRTP header extension added into a header of the RTP packet, wherein the authentication signature is separate from a SRTP signature of the body of the RTP packet; receiving an MPRTP packet at the processor of the computing device, wherein the received MPRTP packet is authenticated using another authentication signature; and applying a new authentication signature to a new MPRTP packet to authenticate a MPRTP header extension of the new MPRTP packet.
This invention relates to secure multipath real-time communication, specifically improving the authentication of Multipath Real-Time Transport Protocol (MPRTP) packets while maintaining compatibility with Secure RTP (SRTP). The problem addressed is ensuring secure and authenticated transmission of RTP packets across multiple paths without compromising the integrity of the original SRTP protection. The method involves receiving an RTP packet at a computing device, where the packet is part of an SRTP-protected stream. An authentication signature is applied to the RTP packet to verify an MPRTP header extension added to the packet's header. This signature is distinct from the SRTP signature that secures the packet body, allowing independent authentication of the MPRTP-specific data. The method also includes receiving an MPRTP packet and verifying its authenticity using another authentication signature. Additionally, a new authentication signature is applied to a new MPRTP packet to authenticate its MPRTP header extension, ensuring end-to-end security across multiple transmission paths. This approach enables secure multipath communication by separating the authentication of MPRTP-specific metadata from the SRTP-protected payload, maintaining both security and interoperability with existing RTP/SRTP systems. The solution is particularly useful in scenarios requiring reliable, real-time data transmission over unstable or heterogeneous networks.
2. The method of claim 1 , wherein the authentication signature is a Secure MPRTP (SMPRTP) tag.
A system and method for secure communication in a networked environment, particularly for authenticating data transmissions between devices. The invention addresses the problem of ensuring data integrity and authenticity in communication protocols, especially in environments where devices exchange sensitive information. The method involves generating and verifying an authentication signature to confirm the legitimacy of transmitted data. Specifically, the authentication signature is implemented as a Secure MPRTP (SMPRTP) tag, which is a cryptographic marker embedded within the data packet to validate its origin and prevent tampering. The SMPRTP tag includes cryptographic elements such as digital signatures or hash values, ensuring that only authorized devices can generate or verify the tag. This approach enhances security by detecting unauthorized modifications or spoofing attempts during transmission. The method is applicable in various networked systems, including IoT devices, industrial control systems, and secure communication channels, where data integrity and authentication are critical. The use of SMPRTP tags provides a robust mechanism for verifying the authenticity of transmitted data, reducing the risk of cyberattacks and ensuring reliable communication.
3. The method of claim 2 , wherein the computing device is a server and wherein receiving the MPRTP packet further comprises: recovering media content included in the received MPRTP packet; and generating the new MPRTP packet including the media content for transmission on a new set of paths.
This invention relates to media packet routing in network communication systems, specifically addressing the challenge of efficiently transmitting media content across multiple paths to improve reliability and performance. The method involves a computing device, such as a server, receiving a Media Packet Routing Transport Protocol (MPRTP) packet containing media content. The device recovers the media content from the received packet and generates a new MPRTP packet that includes the same media content. This new packet is then transmitted over a different set of network paths, ensuring redundancy and optimizing data delivery. The approach enhances fault tolerance by dynamically rerouting media packets, reducing the risk of data loss or latency in network communications. The method supports seamless transmission of media content across diverse network conditions, making it suitable for applications requiring high reliability, such as video streaming, real-time communication, and multimedia broadcasting. By leveraging MPRTP, the system ensures efficient packet handling and adaptive routing, improving overall network performance.
4. A device, comprising: a processor configured with processor-executable instructions to perform operations comprising: receiving a Real-Time Transport Protocol (RTP) packet, wherein the received RTP packet is part of an RTP stream that is protected using secure RTP (SRTP); applying an authentication signature to the RTP packet to authenticate a Multipath Real-Time Transport Protocol (MPRTP) header extension added into a header of the RTP packet, wherein the authentication signature is separate from a SRTP signature of the body of the RTP packet; receiving an MPRTP packet, wherein the received MPRTP packet is authenticated using another authentication signature; and applying a new authentication signature to a new MPRTP packet to authenticate a MPRTP header extension of the new MPRTP packet.
This invention relates to secure communication systems, specifically enhancing the authentication of Multipath Real-Time Transport Protocol (MPRTP) header extensions in Real-Time Transport Protocol (RTP) streams protected by Secure RTP (SRTP). The problem addressed is ensuring the integrity and authenticity of MPRTP header extensions while maintaining compatibility with existing SRTP security mechanisms. The device includes a processor configured to process RTP packets within an SRTP-protected stream. Upon receiving an RTP packet, the processor applies an authentication signature specifically to the MPRTP header extension, distinct from the SRTP signature used for the packet body. This allows verification of the MPRTP header extension without altering the SRTP protection of the payload. The device also receives MPRTP packets, which are authenticated using a separate signature, ensuring the integrity of multipath communication data. Additionally, the processor can generate new authentication signatures for new MPRTP packets, authenticating their header extensions independently of the SRTP body protection. This dual-signature approach ensures secure multipath communication while preserving the existing SRTP security framework.
5. The device of claim 4 , wherein the processor is configured with processor-executable instructions to perform operations such that the authentication signature is a Secure MPRTP (SMPRTP) tag.
A system for secure communication in a networked environment addresses the problem of verifying the authenticity and integrity of data transmitted between devices. The system includes a processor configured to generate and validate authentication signatures for data packets. Specifically, the processor executes instructions to create an authentication signature that is a Secure MPRTP (SMPRTP) tag. The SMPRTP tag is a cryptographic marker embedded within data packets to ensure that the data has not been tampered with and originates from a trusted source. The processor also validates incoming data packets by checking their SMPRTP tags against expected values, rejecting any packets that fail authentication. This mechanism enhances security in communication protocols by preventing unauthorized modifications or spoofing of data. The system may be integrated into network devices, such as routers or endpoints, to enforce secure data transmission across various network layers. The use of SMPRTP tags ensures that only authenticated and verified data is processed, reducing the risk of cyberattacks and data corruption. The processor's configuration allows for real-time authentication, making the system suitable for high-speed networks where latency is a concern.
6. The device of claim 5 , wherein: the device is a server; and the processor is configured with processor-executable instructions to perform operations such that receiving the MPRTP packet further comprises: recovering media content included in the received MPRTP packet; and generating the new MPRTP packet including the media content for transmission on a new set of paths.
This invention relates to a server device configured to process and forward media packets in a network, specifically handling Media Packet Real-Time Transport Protocol (MPRTP) packets. The problem addressed is efficient and reliable transmission of media content across multiple network paths, ensuring robustness and minimizing latency. The server includes a processor that executes instructions to receive an MPRTP packet containing media content. Upon receiving the packet, the processor recovers the media content embedded within it. The server then generates a new MPRTP packet, incorporating the recovered media content, for transmission over a new set of network paths. This process ensures that media data is dynamically routed through alternative paths, improving resilience against network failures and optimizing transmission efficiency. The server's ability to recover and repacketize media content allows for flexible and adaptive routing strategies, enhancing overall network performance for real-time media applications. The invention is particularly useful in scenarios requiring high reliability and low-latency media delivery, such as video streaming, teleconferencing, or live broadcasting.
7. A device, comprising: means for receiving a Real-Time Transport Protocol (RTP) packet, wherein the received RTP packet is part of an RTP stream that is protected using secure RTP (SRTP); means for applying an authentication signature to the RTP packet to authenticate a Multipath Real-Time Transport Protocol (MPRTP) header extension added into a header of the RTP packet, wherein the authentication signature is separate from a SRTP signature of the body of the RTP packet; means for receiving an MPRTP packet, wherein the received MPRTP packet is authenticated using another authentication signature; and means for applying a new authentication signature to a new MPRTP packet to authenticate a MPRTP header extension of the new MPRTP packet.
This invention relates to secure multipath real-time communication systems, specifically addressing challenges in authenticating header extensions in Multipath Real-Time Transport Protocol (MPRTP) packets while maintaining compatibility with Secure Real-Time Transport Protocol (SRTP). The problem solved is ensuring the integrity and authenticity of MPRTP header extensions without interfering with the existing SRTP security mechanisms applied to the packet body. The device receives an RTP packet that is part of an SRTP-protected stream, meaning the packet body is secured with an SRTP signature. The device then applies an additional authentication signature specifically to authenticate an MPRTP header extension added to the RTP packet header. This signature is separate from the SRTP signature, allowing independent verification of the header extension. The device also receives an MPRTP packet, which is authenticated using its own authentication signature. For new MPRTP packets, the device applies a new authentication signature to authenticate the MPRTP header extension, ensuring end-to-end security for multipath communication. This approach enables secure multipath communication by validating header extensions while preserving the integrity of the original SRTP-protected payload, addressing security gaps in traditional RTP/SRTP implementations when used with multipath extensions.
8. The device of claim 7 , wherein the authentication signature is a Secure MPRTP (SMPRTP) tag.
A system for secure data transmission involves a device that generates and verifies authentication signatures to ensure data integrity and authenticity. The device includes a processor configured to create an authentication signature for a data packet, where the signature is derived from a cryptographic hash of the packet's contents. The processor also verifies received data packets by comparing their authentication signatures against a locally generated signature. The authentication signature is implemented as a Secure MPRTP (SMPRTP) tag, which is a standardized format for embedding cryptographic signatures within data packets to prevent tampering and ensure the packet's origin. The device may also include a network interface for transmitting and receiving data packets over a communication network, ensuring secure end-to-end data transmission. The system is designed to address security vulnerabilities in data transmission by providing a robust mechanism for verifying the authenticity and integrity of transmitted data, preventing unauthorized modifications and ensuring that data originates from a trusted source. The use of SMPRTP tags ensures compatibility with existing protocols while enhancing security.
9. The device of claim 8 , wherein the device is a server and means for receiving the MPRTP packet further comprise: means for recovering media content included in the received MPRTP packet; and means for generating the new MPRTP packet including the media content for transmission on a new set of paths.
This invention relates to a server-based system for handling Media Packet Recovery Transport Protocol (MPRTP) packets in a network. The problem addressed is the efficient recovery and retransmission of media content across multiple network paths to improve reliability and performance in media streaming or communication applications. The server includes means for receiving an MPRTP packet, which contains media content and may have been transmitted over one or more network paths. The server recovers the media content from the received packet. It then generates a new MPRTP packet that includes the recovered media content, preparing it for transmission over a new set of network paths. This process ensures that media content can be reliably delivered even if some paths fail or experience errors, enhancing the robustness of media transmission in dynamic network environments. The server may also include means for processing the MPRTP packet to extract or reconstruct the media content, ensuring that the data is correctly formatted for retransmission. The new MPRTP packet is structured to optimize transmission over the new paths, potentially improving efficiency and reducing latency. This approach is particularly useful in applications such as video conferencing, live streaming, or other real-time media services where uninterrupted delivery is critical.
10. A non-transitory processor-readable storage medium having stored thereon processor-executable instructions configured to cause a processor of a computing device to perform operations comprising: receiving a Real-Time Transport Protocol (RTP) packet, wherein the received RTP packet is part of an RTP stream that is protected using secure RTP (SRTP); applying an authentication signature to the RTP packet to authenticate a Multipath Real-Time Transport Protocol (MPRTP) header extension added into a header of the RTP packet, wherein the authentication signature is separate from a SRTP signature of the body of the RTP packet; receiving an MPRTP packet, wherein the received MPRTP packet is authenticated using another authentication signature; and applying a new authentication signature to a new MPRTP packet to authenticate a MPRTP header extension of the new MPRTP packet.
This invention relates to secure communication protocols, specifically enhancing the security of Multipath Real-Time Transport Protocol (MPRTP) by authenticating header extensions independently of the Secure Real-Time Transport Protocol (SRTP) body authentication. The problem addressed is ensuring the integrity and authenticity of MPRTP header extensions while maintaining compatibility with SRTP, which secures the payload but not the header extensions. The solution involves a processor-readable storage medium containing instructions to authenticate MPRTP header extensions using a separate authentication signature from the SRTP signature applied to the RTP packet body. The system receives an RTP packet with an MPRTP header extension, applies an authentication signature to verify its integrity, and similarly authenticates received MPRTP packets. For new MPRTP packets, a new authentication signature is applied to the header extension. This approach ensures that header extensions, which may contain critical routing or path selection information, are protected without interfering with SRTP's payload security. The method supports multipath communication by validating header extensions independently, improving reliability and security in real-time multimedia applications.
11. The non-transitory processor-readable storage medium of claim 10 , wherein the stored processor-executable instructions are configured to cause a processor of a computing device to perform operations such that the authentication signature is a Secure MPRTP (SMPRTP) tag.
The invention relates to secure communication protocols, specifically a method for generating and verifying authentication signatures in a communication system. The problem addressed is ensuring the integrity and authenticity of data transmitted between devices, particularly in environments where security is critical. The solution involves using a Secure Multi-Party Remote Transaction Protocol (SMPRTP) tag as an authentication signature to verify the legitimacy of transmitted data. The system includes a computing device with a processor and a non-transitory processor-readable storage medium storing processor-executable instructions. When executed, these instructions cause the processor to generate or verify an authentication signature in the form of an SMPRTP tag. The SMPRTP tag is a cryptographic construct designed to authenticate data exchanged between multiple parties, ensuring that the data has not been tampered with and originates from a trusted source. The authentication process involves generating the SMPRTP tag using cryptographic techniques, such as digital signatures or message authentication codes, and embedding it within the transmitted data. Upon receipt, the recipient device verifies the SMPRTP tag to confirm the data's integrity and authenticity. This method enhances security in communication systems by preventing unauthorized access, tampering, or spoofing of transmitted data. The use of SMPRTP tags ensures that only authorized parties can participate in the communication, maintaining the confidentiality and reliability of the exchanged information.
12. The non-transitory processor-readable storage medium of claim 11 , wherein: the computing device is a server; and the stored processor-executable instructions are configured to cause a processor of the server to perform operations such that receiving the MPRTP packet further comprises: recovering media content included in the received MPRTP packet; and generating the new MPRTP packet including the media content for transmission on a new set of paths.
This invention relates to media content transmission in networked systems, specifically addressing the challenge of efficiently routing and recovering media data packets in distributed computing environments. The system involves a server configured to process Media Packet Real-Time Transport Protocol (MPRTP) packets, which are used for transmitting media content such as video or audio streams. The server receives an MPRTP packet containing media content, recovers the embedded media data, and then generates a new MPRTP packet incorporating this media content. The new packet is transmitted over a different set of network paths, ensuring robust and flexible media delivery. This approach enhances reliability by allowing dynamic path selection and recovery of media data, which is critical for real-time applications where packet loss or network congestion could degrade performance. The server's ability to reconstruct and retransmit media content ensures continuous and uninterrupted streaming, even in the presence of network disruptions. The invention is particularly useful in scenarios requiring high availability and low latency, such as live broadcasting, video conferencing, or cloud-based media services. By leveraging MPRTP packets, the system optimizes media transmission efficiency while maintaining data integrity and minimizing delays.
Cooperative Patent Classification codes for this invention.
August 29, 2017
October 27, 2020
Discover thousands of AI-analyzed patents with comprehensive breakdowns, multimedia content, and expert insights.